Hello, I'm running samba on a Linux server. I want to login to that samba share from another computer not located in that specific network. I want to be able to "open" my samba server so everyone will be able to login to it. I'll secure this unsecured option using Firewall, restricting those specific ports only for the IP I would like to login from. What's the right way to do it without using VPN? My problem is that I need to access it from a Windows server. And using NFS / FTP / RSYNC / SSHFS is not an option due to that. Using a VPN is not an option due to the specific application usage method in the Windows side. Thanks a lot in advance, -- Yoav. -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.394 / Virus Database: 268.8.0/353 - Release Date: 31/05/2006
> I want to login to that samba share from another computer not located > in that specific network. > > What's the right way to do it without using VPN? My problem is that I > need to access it from a Windows server. And using NFS / FTP / > RSYNC / SSHFS is not an option due to that.All you need to do is open the ports that SMB/CIFS uses - from memory, 137, 138, 139 and 445. You'll also probably need to enable broadcasts, so that any broadcast messages are also sent to the remote Samba server. That can be tricky (if not impossible under Windows) but I believe you can get around this by enabling the WINS server on the Samba machine, and then entering its IP address in the "WINS server" field under the Windows TCP settings box. Note however that more than a couple of ISPs block these ports for security reasons, so you may not even be able to accept incoming connections without using a VPN.> Using a VPN is not an option due to the specific application usage > method in the Windows side.All a VPN is supposed to do is make the IP address of your Samba server available on a separate network interface. It should be transparent to any applications, so if you do it right it shouldn't cause a problem. It can be tricky to set up, but I think it may end up being less troublesome/more reliable than allowing direct connections. Cheers, Adam.
Hello, Have you tried to tunnel those 137-139 and 445 port over SSH? Here is a guide to that and it works for me using XP SP2, not sure if it is applicable to your windows server environment. http://www.blisstonia.com/eolson/notes/smboverssh.php Good luck. Him Yoav zuri wrote:> Hello, > > > > I'm running samba on a Linux server. > > > > I want to login to that samba share from another computer not located in > that specific network. > > > > I want to be able to "open" my samba server so everyone will be able to > login to it. > > > > I'll secure this unsecured option using Firewall, restricting those specific > ports only for the IP I would like to login from. > > > > What's the right way to do it without using VPN? My problem is that I need > to access it from a Windows server. And using NFS / FTP / RSYNC / SSHFS is > not an option due to that. > > > > Using a VPN is not an option due to the specific application usage method in > the Windows side. > > > > > > > > Thanks a lot in advance, > > -- Yoav. > > > >